Solved

How Do You Tell if You're Being Hacked?!

Posted on 2004-09-19
9
2,295 Views
Last Modified: 2009-11-05
What I wants to know is how can you tell if someone has stolen any personal information from your computer, if they managed to get into your computer, or attempt to get into ur computer.  There has to be a way to tell all connections ever made to the computer.

The only way I knows is netstat (-a -b -n -v -etc)  I knows how to use all those commands.

But is there other ways too tell as well.  Cause lately my internet speed was up and down.  Sometimes when I sends a file or surf the web it's really fast then 5 minutes later the internet goes really slow.  I have broadband and sometimes I gets 5 kbps then another while after I gets 100 kbps.  Seems a little suspiscious and I want to take a closer look into the matter.

So if anyone knows of all the ways to tell all of the connections ever made to this computer.  From startup to shutdown, keep a log of all connections?   Any comments?
0
Comment
Question by:Xygus02
9 Comments
 

Author Comment

by:Xygus02
Comment Utility
Note:   my svchost.exe  shows up in my netstat, but my firewall blocks all connections made to and from my computer.  Should I be weary of this connection?
0
 
LVL 12

Expert Comment

by:rossfingal
Comment Utility
Depending on your system -
you'll have multiple copies of svchost.exe running from:
C:\WINDOWS\System32
or -
C:\WINNT\System32
These are legitimate processes.

Cheers!
RF
0
 
LVL 2

Accepted Solution

by:
smconsult earned 245 total points
Comment Utility
What kind of firewall are you using?

Sean
0
6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

 

Author Comment

by:Xygus02
Comment Utility
I'm using Norton Personal Firewall 2003
and the firewall Service Pack 2 comes with.
0
 
LVL 2

Expert Comment

by:smconsult
Comment Utility
I'm not familiar with the logging capabilities of Norton.

If you were using a hardware firewall of some sort, you could use a Syslog program like Kiwi to log all of the incoming and outgoing connections.  For example, I'm using a Linksys BEFSR81 at the house, and an RV082 at work, and both are dumping their logs to Kiwi for forwarding to Dshield.org.

Are you on dial-up, or broadband?  (From the speeds you mentioned in your original question, it sounds like you're on dial-up.)

Sean
0
 
LVL 11

Expert Comment

by:Quetzal
Comment Utility
Could be a bad network adaptor, wiring inside or outside.  Try opening a cmd window and do a continuous ping (e.g. ping -t google.com) to see if dropped packets or high latency during the slow periods.
0
 

Expert Comment

by:Xygus
Comment Utility
No more replys to this question plz.  Xygus02 has been suspended cause experts-exchange suspected me of more then one account.  So I need to end this question immediately, thou I don't have the power to accept any of your answers.  But an admin might be able to do it for me.  If I had to choose anyone here to be rewarded, I would choose smconsult cause he told me about Dshield.org which I am going to use once I knows what my SMTP is.

thx
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Phishing is at the top of most security top 10 efforts you should be pursuing in 2016 and beyond. If you don't have phishing incorporated into your Security Awareness Program yet, now is the time. Phishers, and the scams they use, are only going to …
Find out what Office 365 Transport Rules are, how they work and their limitations managing Office 365 signatures.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video discusses moving either the default database or any database to a new volume.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now